Searching the Help
To search for information in the Help, type a word or phrase in the Search box. When you enter a group of words, OR is inferred. You can use Boolean operators to refine your search.
Results returned are case insensitive. However, results ranking takes case into account and assigns higher scores to case matches. Therefore, a search for "cats" followed by a search for "Cats" would return the same number of Help topics, but the order in which the topics are listed would be different.
Words and Phrases
| Search for | Example | Results |
|---|---|---|
| A single word | cat
|
Topics that contain the word "cat". You will also find its grammatical variations, such as "cats". |
|
A phrase. You can specify that the search results contain a specific phrase. |
"cat food" (quotation marks) |
Topics that contain the literal phrase "cat food" and all its grammatical variations. Without the quotation marks, the query is equivalent to specifying an OR operator, which finds topics with one of the individual words instead of the phrase. |
Using Boolean Operators
| Search for | Operator | Example |
|---|---|---|
|
Two or more words in the same topic |
|
|
| Either word in a topic |
|
|
| Topics that do not contain a specific word or phrase |
|
|
| Topics that contain one string and do not contain another | ^ (caret) |
cat ^ mouse
|
| A combination of search types | ( ) parentheses |
|
Use Certificate Authority
NPS enables you to use certificates signed by a third-party certificate authority (CA). By using a thirdparty certificate authority, you can ensure secure communication between the NPS system and the browser used to access different parts of the NPS console.
To configure NPS to use a third-party CA:
- Enable the HTTPS Mode
- Generate the Third-Party CA Certificate
-
Import the Third-Party CA Certificate
Task 1: Enable the HTTPS Mode
If you select the HTTPS mode of communication while running the nnmenableperfspi.ovpl script on the NNMi management server, NPS starts running in the HTTPS mode after the installation is complete. In that case, you need not perform this task.
If did not select the HTTPS mode of communication while running the nnmenableperfspi.ovpl script:
In a distributed deployment of NPS, perform this task on the UiBi Server.
- Log on to the NPS system as administrator or root.
-
Run the following command:
- On Windows: %ovinstalldir%\NNMPerformanceSPI\bin\configureWebAccess.ovpl -newport <port_number> -ssl
- On Linux: /opt/OV/NNMPerformanceSPI/bin/configureWebAccess.ovpl -newport <port_number> -ssl
In this instance, <port_number> is the port on which you want to run the NPS Business Intelligence Server.
-
Restart the Business Intelligence Server by running the following commands:
On Windows:
-
%ovinstalldir%\NNMPerformanceSPI\bin\stopBI.ovpl
-
%ovinstalldir%\NNMPerformanceSPI\bin\startBI.ovpl
On Linux:
-
/opt/OV/NNMPerformanceSPI/bin/stopBI.ovpl
-
/opt/OV/NNMPerformanceSPI/bin/startBI.ovpl
-
Task 2: Generate the Third-Party CA Certificate
To generate the third-party CA certificate:
In a distributed deployment of NPS, perform this task on the UiBi Server.
- Log on to the NPS system as administrator or root.
-
Run the following command:
- On Windows: %ovinstalldir%\NNMPerformanceSPI\bin\runBIConfigGUI.ovpl
- On Linux: /opt/OV/NNMPerformanceSPI/bin/runBIConfigGUI.ovpl
The NNM iSPI Performance BI Configuration window opens.
-
In the Explorer pane, click Security > Cryptography > Cognos.
-
In the right pane, under the Signing Key Settings section, change the Signing key store password. Note down this new password.
-
In the right pane, under the Encryption Key Settings section, change the Encryption key store password. Note down this new password.
-
Close the NNM iSPI Performance BI Configuration window.
-
Go to the following directory:
- On Windows:
%ovinstalldir%\nonOV\conos\bi\configuration - On Linux:
/opt/OV/nonOV/cognos/bi/configuration
- On Windows:
-
Take a backup of the following files and directories:
cogstartup.xmlencryptkeypair/signkeypair/
-
Set the
JAVA_HOMEenvironment variable to the following directory:- On Windows:
%ovinstalldir%\nonOV\jdk\hpsw - On Linux:
/opt/OV/nonOV/jdk/hpsw
- On Windows:
-
Go to the following directory:
- On Windows:
%ovinstalldir%\nonOV\conos\bi\bin - On Linux:
/opt/OV/nonOV/cognos/bi/bin
- On Windows:
-
Run the following commands:
-
On Windows:
-
ThirdPartyCertificateTool.bat -c -s -d "CN=<NPS_FQDN>,O=<org name>,C=<Country>" -rsignRequest.csr -D ../configuration/signkeypair -p <password_sign>
-
ThirdPartyCertificateTool.bat -c -e -d "CN=<NPS_FQDN>,O=<org name>,C=<Country>" -rencryptRequest.csr -D ../configuration/encryptkeypair -p <password_encrypt>
-
-
On Linux:
-
./ThirdPartyCertificateTool.sh -c -s -d "CN=<NPS_FQDN>,O=<org name>,C=<Country>" -rsignRequest.csr -D ../configuration/signkeypair -p <password_sign>
-
./ThirdPartyCertificateTool.sh -c -e -d "CN=<NPS_FQDN>,O=<org name>,C=<Country>" -rencryptRequest.csr -D ../configuration/encryptkeypair -p <password_encrypt>
-
In this instance, <password_sign> is the password that you assigned in step 4; <password_encrypt> is the password that you assigned in step 5; <NPS_FQDN> is the fully qualified domain name of the NPS system.
The above commands create the signRequest.csr and encryptRequest.csr files. Use these .csr files to obtain corresponding signRequest.cer and encryptRequest.cer files and the root certificate (ca.cer) from the third-party signing authority.
-
Task 3: Import the Third-Party CA Certificate
To import the third-party CA certificate into the Business Intelligence Server of NPS:
In a distributed deployment of NPS, perform this task on the UiBi Server.
- Log on to the NPS system as administrator or root.
-
Go to the following directory:
- On Windows:
%ovinstalldir%\nonOV\conos\bi\bin - On Linux:
/opt/OV/nonOV/cognos/bi/bin
- On Windows:
- Place the signRequest.cer, encryptRequest.cer, and ca.cer files (created in the previous task) in this directory.
- Rename the signRequest.cerand encryptRequest.cer files to signCertificate.cer and encryptCertificate.cer.
-
Run the following commands:
-
On Windows:
- ThirdPartyCertificateTool.bat -i -s -r signCertificate.cer -D ../configuration/signkeypair -p <password_sign> -t ca.cer
-
ThirdPartyCertificateTool.bat -i -e -r encryptCertificate.cer -D../configuration/encryptkeypair -p <password_encrypt> -t ca.cer
-
ThirdPartyCertificateTool.bat -i -T -r ca.cer -D ../configuration/signkeypair -p <password_ca>
-
On Linux:
-
./ThirdPartyCertificateTool.sh -i -s -r signCertificate.cer -D ../configuration/signkeypair -p <password_sign> -t ca.cer
- ./ThirdPartyCertificateTool.sh -i -e -r encryptCertificate.cer -D../configuration/encryptkeypair -p <password_encrypt> -t ca.cer
-
./ThirdPartyCertificateTool.sh -i -T -r ca.cer -D ../configuration/signkeypair -pNoPassWordSet
-
In this instance, <password_sign> is the password that you assigned in step 4; <password_encrypt> is the password that you assigned in step 5.
-
-
Go to the following directory:
- On Windows:
%ovinstalldir%\nonOV\conos\bi\configuration -
On Linux:
/opt/OV/nonOV/cognos/bi/configuration
- On Windows:
- Undo the
JAVA_HOMEvariable configuration that was set in step 9. -
Open the
cogstartup.xmlfile with a text editor and make sure that thecrn:parameterelement contains the following content:<crn:parameter name="thirdPartyCA">
<crn:value xsi:type="xsd:boolean">true</crn:value>
</crn:parameter>
-
Restart the Business Intelligence Server by running the following commands:
On Windows:
-
%ovinstalldir%\NNMPerformanceSPI\bin\stopBI.ovpl
-
%ovinstalldir%\NNMPerformanceSPI\bin\startBI.ovpl
On Linux:
-
/opt/OV/NNMPerformanceSPI/bin/stopBI.ovpl
- /opt/OV/NNMPerformanceSPI/bin/startBI.ovpl
-
We welcome your comments!
To open the configured email client on this computer, open an email window.
Otherwise, copy the information below to a web mail client, and send this email to network-management-doc-feedback@hpe.com.
Help Topic ID:
Product:
Topic Title:
Feedback: